139.59.238.136

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.238.14	attackbots	SSH Brute-Force reported by Fail2Ban	2020-07-12 02:30:25
139.59.238.14	attackbotsspam	Jul 4 06:08:53 itv-usvr-01 sshd[22897]: Invalid user rodolfo from 139.59.238.14 Jul 4 06:08:53 itv-usvr-01 sshd[22897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Jul 4 06:08:53 itv-usvr-01 sshd[22897]: Invalid user rodolfo from 139.59.238.14 Jul 4 06:08:55 itv-usvr-01 sshd[22897]: Failed password for invalid user rodolfo from 139.59.238.14 port 42122 ssh2 Jul 4 06:18:02 itv-usvr-01 sshd[23370]: Invalid user ignite from 139.59.238.14	2020-07-04 07:35:00
139.59.238.14	attackspambots	$f2bV_matches	2020-05-01 19:41:53
139.59.238.14	attack	SSH bruteforce	2020-02-13 16:27:47
139.59.238.14	attackbotsspam	(sshd) Failed SSH login from 139.59.238.14 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 6 15:37:43 ubnt-55d23 sshd[5307]: Invalid user sgt from 139.59.238.14 port 43522 Feb 6 15:37:45 ubnt-55d23 sshd[5307]: Failed password for invalid user sgt from 139.59.238.14 port 43522 ssh2	2020-02-06 23:36:16
139.59.238.14	attackspambots	20 attempts against mh-ssh on cloud.magehost.pro	2020-01-21 19:57:40
139.59.238.14	attackspambots	Unauthorized connection attempt detected from IP address 139.59.238.14 to port 2220 [J]	2020-01-19 23:35:38
139.59.238.14	attackspambots	Unauthorized connection attempt detected from IP address 139.59.238.14 to port 2220 [J]	2020-01-19 20:54:16
139.59.238.14	attack	$f2bV_matches	2020-01-07 08:44:18
139.59.238.14	attack	Jan 2 17:23:15 game-panel sshd[28488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Jan 2 17:23:18 game-panel sshd[28488]: Failed password for invalid user MC from 139.59.238.14 port 55680 ssh2 Jan 2 17:27:01 game-panel sshd[28582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14	2020-01-03 04:29:30
139.59.238.14	attackbots	$f2bV_matches	2019-12-16 22:32:05
139.59.238.14	attackbotsspam	Dec 2 12:09:23 php1 sshd\[20578\]: Invalid user donatas from 139.59.238.14 Dec 2 12:09:23 php1 sshd\[20578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Dec 2 12:09:24 php1 sshd\[20578\]: Failed password for invalid user donatas from 139.59.238.14 port 55012 ssh2 Dec 2 12:15:39 php1 sshd\[21250\]: Invalid user unzip from 139.59.238.14 Dec 2 12:15:39 php1 sshd\[21250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14	2019-12-03 06:31:25
139.59.238.14	attack	Nov 29 07:14:24 venus sshd\[14305\]: Invalid user wwwrun from 139.59.238.14 port 38628 Nov 29 07:14:24 venus sshd\[14305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Nov 29 07:14:26 venus sshd\[14305\]: Failed password for invalid user wwwrun from 139.59.238.14 port 38628 ssh2 ...	2019-11-29 15:21:13
139.59.238.14	attackbots	Nov 26 17:49:40 v22018076622670303 sshd\[7005\]: Invalid user euclid123 from 139.59.238.14 port 38986 Nov 26 17:49:40 v22018076622670303 sshd\[7005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Nov 26 17:49:42 v22018076622670303 sshd\[7005\]: Failed password for invalid user euclid123 from 139.59.238.14 port 38986 ssh2 ...	2019-11-27 01:48:20
139.59.238.14	attack	Nov 20 14:37:08 game-panel sshd[1901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14 Nov 20 14:37:11 game-panel sshd[1901]: Failed password for invalid user passwd123 from 139.59.238.14 port 57506 ssh2 Nov 20 14:41:36 game-panel sshd[2149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.238.14	2019-11-21 02:44:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.238.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.238.136.			IN	A

;; AUTHORITY SECTION:
.			162	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:37:16 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 136.238.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.238.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.88.12.83	attackbots	Fail2Ban Ban Triggered	2020-08-08 08:07:46
191.33.170.162	attack	Automated report (2020-08-08T04:24:02+08:00). Referrer spam originating from this address detected (anti-crisis-seo.com).	2020-08-08 08:06:52
45.225.110.222	attackbots	trying to access non-authorized port	2020-08-08 08:15:06
34.219.219.149	attackbots	port 25	2020-08-08 08:11:31
106.38.0.67	attackbots	Unwanted checking 80 or 443 port ...	2020-08-08 07:54:57
106.51.113.15	attack	Aug 7 22:33:43 sshd\[22951\]: User root from 106.51.113.15 not allowed because not listed in AllowUsersAug 7 22:33:46 sshd\[22951\]: Failed password for invalid user root from 106.51.113.15 port 39723 ssh2 ...	2020-08-08 08:26:18
145.239.11.166	attackbotsspam	[2020-08-07 20:09:59] NOTICE[1248][C-00004afc] chan_sip.c: Call from '' (145.239.11.166:11934) to extension '00447441399590' rejected because extension not found in context 'public'. [2020-08-07 20:09:59] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-07T20:09:59.849-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00447441399590",SessionID="0x7f27204d2b88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.11.166/5060",ACLName="no_extension_match" [2020-08-07 20:11:27] NOTICE[1248][C-00004afe] chan_sip.c: Call from '' (145.239.11.166:22372) to extension '00447441399590' rejected because extension not found in context 'public'. [2020-08-07 20:11:27] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-07T20:11:27.163-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00447441399590",SessionID="0x7f27204d2b88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/14 ...	2020-08-08 08:27:35
128.199.65.185	attack	Lines containing failures of 128.199.65.185 Aug 6 10:56:47 jarvis sshd[445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.65.185 user=r.r Aug 6 10:56:49 jarvis sshd[445]: Failed password for r.r from 128.199.65.185 port 34106 ssh2 Aug 6 10:56:51 jarvis sshd[445]: Received disconnect from 128.199.65.185 port 34106:11: Bye Bye [preauth] Aug 6 10:56:51 jarvis sshd[445]: Disconnected from authenticating user r.r 128.199.65.185 port 34106 [preauth] Aug 6 11:02:04 jarvis sshd[706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.65.185 user=r.r Aug 6 11:02:07 jarvis sshd[706]: Failed password for r.r from 128.199.65.185 port 45968 ssh2 Aug 6 11:02:08 jarvis sshd[706]: Received disconnect from 128.199.65.185 port 45968:11: Bye Bye [preauth] Aug 6 11:02:08 jarvis sshd[706]: Disconnected from authenticating user r.r 128.199.65.185 port 45968 [preauth] Aug 6 11:04:39 jarvi........ ------------------------------	2020-08-08 08:18:14
119.45.151.125	attackspambots	$f2bV_matches	2020-08-08 07:59:31
116.196.101.168	attackbots	Aug 8 02:21:38 fhem-rasp sshd[26871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.101.168 user=root Aug 8 02:21:40 fhem-rasp sshd[26871]: Failed password for root from 116.196.101.168 port 50456 ssh2 ...	2020-08-08 08:31:45
222.186.190.17	attack	Aug 8 02:16:10 alpha sshd[13291]: Unable to negotiate with 222.186.190.17 port 40262: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth] Aug 8 02:17:14 alpha sshd[13300]: Unable to negotiate with 222.186.190.17 port 41553: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth] Aug 8 02:18:23 alpha sshd[13302]: Unable to negotiate with 222.186.190.17 port 45643: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth]	2020-08-08 08:30:12
27.151.117.65	attackspambots	Lines containing failures of 27.151.117.65 Aug 4 12:41:13 mx-in-01 sshd[19291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.151.117.65 user=r.r Aug 4 12:41:15 mx-in-01 sshd[19291]: Failed password for r.r from 27.151.117.65 port 33948 ssh2 Aug 4 12:41:15 mx-in-01 sshd[19291]: Received disconnect from 27.151.117.65 port 33948:11: Bye Bye [preauth] Aug 4 12:41:15 mx-in-01 sshd[19291]: Disconnected from authenticating user r.r 27.151.117.65 port 33948 [preauth] Aug 4 12:45:25 mx-in-01 sshd[19655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.151.117.65 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.151.117.65	2020-08-08 08:04:07
185.156.73.50	attackbots	Fail2Ban Ban Triggered	2020-08-08 08:01:32
113.161.144.254	attackbots	Lines containing failures of 113.161.144.254 Aug 6 03:31:04 jarvis sshd[7253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 6 03:31:06 jarvis sshd[7253]: Failed password for r.r from 113.161.144.254 port 37814 ssh2 Aug 6 03:31:08 jarvis sshd[7253]: Received disconnect from 113.161.144.254 port 37814:11: Bye Bye [preauth] Aug 6 03:31:08 jarvis sshd[7253]: Disconnected from authenticating user r.r 113.161.144.254 port 37814 [preauth] Aug 6 03:44:36 jarvis sshd[8041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 6 03:44:38 jarvis sshd[8041]: Failed password for r.r from 113.161.144.254 port 35830 ssh2 Aug 6 03:44:39 jarvis sshd[8041]: Received disconnect from 113.161.144.254 port 35830:11: Bye Bye [preauth] Aug 6 03:44:39 jarvis sshd[8041]: Disconnected from authenticating user r.r 113.161.144.254 port 35830 [preauth] Aug ........ ------------------------------	2020-08-08 08:11:15
166.62.100.99	attack	Attempt to login to WordPress via /wp-login.php	2020-08-08 08:30:29

Recently Reported IPs

139.59.238.113	139.59.237.245	139.59.238.180	139.59.238.22
139.59.238.239	139.59.239.0	118.254.202.192	139.59.239.139
139.59.239.151	139.59.24.116	139.59.238.20	139.59.24.47
139.59.239.86	139.59.24.81	139.59.24.245	139.59.240.98
139.59.241.181	118.254.202.197	139.59.241.98	139.59.242.161